[Bug 216778] graphics/linux-c7-tiff: update to 4.0.3-27.el7_3

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=216778

            Bug ID: 216778
           Summary: graphics/linux-c7-tiff: update to 4.0.3-27.el7_3
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: emulation at FreeBSD.org
          Reporter: pkubaj at anongoth.pl
          Assignee: emulation at FreeBSD.org
             Flags: maintainer-feedback?(emulation at FreeBSD.org)

Created attachment 179592
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=179592&action=edit
patch

This patch updates the port to the newest version.

Changelog:
* Multiple flaws have been discovered in libtiff. A remote attacker could
exploit these flaws to cause a crash or memory corruption and, possibly,
execute
arbitrary code by tricking an application linked against libtiff into
processing
specially crafted files. (CVE-2016-9533, CVE-2016-9534, CVE-2016-9535)

* Multiple flaws have been discovered in various libtiff tools (tiff2pdf,
tiffcrop, tiffcp, bmp2tiff). By tricking a user into processing a specially
crafted file, a remote attacker could exploit these flaws to cause a crash or
memory corruption and, possibly, execute arbitrary code with the privileges of
the user running the libtiff tool. (CVE-2015-8870, CVE-2016-5652,
CVE-2016-9540,
CVE-2016-9537, CVE-2016-9536)

As such, MFH is necessary.

Builds fine on Poudriere on 10.3.

-- 
You are receiving this mail because:
You are the assignee for the bug.